Curated list of public penetration test reports released by several consulting firms and academic security groups

GetModuleHandle (via PEB) and GetProcAddress (via EAT) like

Windows firewall ruleset PowerShell scripts

Simple (relatively) things allowing you to dig a bit deeper than usual.

Utility that converts an .etl file containing a Windows network packet capture into .pcapng format.

Random Stuff for Cyber Security Incident Response

example queries for learning the kusto language

A personalized/enhanced re-creation of the Darkhotel "Double Star" APT exploit chain with a focus on Windows 8.1 and mixed with some of my own techniques

AV/EDR evasion via direct system calls.

Bi-weekly hunting queries

Red Team C code repo

Anti-virus artifacts. Listing APIs hooked by: Avira, BitDefender, F-Secure, MalwareBytes, Norton, TrendMicro, and WebRoot.

This repository contains sample programs written primarily in C and C++ for learning native code reverse engineering.

A collection of free miscellaneous Windows tools

Privilege Escalation Enumeration Script for Windows

The content of this repository aims to assist efforts on analysing inner working principles, functionalities, and properties of the Microsoft Windows operating system. This repository stores releva…

Obuscated C Christmas programs

Checksec, but for Windows: static detection of security mitigations in executables

A curated list of project-based tutorials in C

Papers from the computer science community to read and discuss.

A list of useful payloads and bypass for Web Application Security and Pentest/CTF

A PowerShell module to facilitate building, configuring, deploying, and auditing Windows Defender Application Control (WDAC) policies

Implementation of Reinforcement Learning Algorithms. Python, OpenAI Gym, Tensorflow. Exercises and Solutions to accompany Sutton's Book and David Silver's course.

Advanced Hunting Queries for Microsoft Security Products